reacton-loader - npm Package Compare versions

Comparing version 2.2.17 to 2.2.18

package.json

 {
   "name": "reacton-loader",
-  "version": "2.2.17",
+  "version": "2.2.18",
   "description": "Loader for single-file Reacton components in Webpack",
@@ -5,0 +5,0 @@ "main": "index.js",

webpack-example-events/package.json

@@ -16,3 +16,3 @@ {
     "jsdom": "^22.1.0",
-    "reacton-js": "^3.4.19"
+    "reacton-js": "^3.4.20"
   },
@@ -25,3 +25,3 @@ "devDependencies": {
     "html-webpack-plugin": "^5.5.3",
-    "reacton-loader": "^2.2.17",
+    "reacton-loader": "^2.2.18",
     "webpack": "^5.88.2",
@@ -28,0 +28,0 @@ "webpack-cli": "^5.1.4",

webpack-example-routes/package.json

@@ -16,3 +16,3 @@ {
     "jsdom": "^22.1.0",
-    "reacton-js": "^3.4.19"
+    "reacton-js": "^3.4.20"
   },
@@ -25,3 +25,3 @@ "devDependencies": {
     "html-webpack-plugin": "^5.5.3",
-    "reacton-loader": "^2.2.17",
+    "reacton-loader": "^2.2.18",
     "webpack": "^5.88.2",
@@ -28,0 +28,0 @@ "webpack-cli": "^5.1.4",

webpack/package.json

@@ -16,3 +16,3 @@ {
     "jsdom": "^22.1.0",
-    "reacton-js": "^3.4.19"
+    "reacton-js": "^3.4.20"
   },
@@ -25,3 +25,3 @@ "devDependencies": {
     "html-webpack-plugin": "^5.5.3",
-    "reacton-loader": "^2.2.17",
+    "reacton-loader": "^2.2.18",
     "webpack": "^5.88.2",
@@ -28,0 +28,0 @@ "webpack-cli": "^5.1.4",

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 2 instances in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Fixed alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 2 instances in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

No metric changes

No dependency changes